HP Systems Insight Manager 5.2 Update 2 Technical Reference Guide
systems you want the HP SIM server to trust into the Trusted System Certificates List of HP SIM. For the
managed system certificate, you can use the system certificate, or, if applicable, the certificate the Certificate
Authority (CA), used to sign the system certificate.
NOTE: If Require is disabled on the Trusted Certificates page, then Trusted System Certificates List is
not used, all certificates are accepted, and you can omit this section.
Before importing system certificates into the HP SIM Trusted System Certificates List, export the certificates
to a file in Distinguished Encoding Rules (DER) or Base64-encoded format. To obtain the system certificate,
you can:
• For Windows system with which you have access to the file system, copy the certificate from the file
c:\compaq\wbem\cert.pem in Base64-encoded format, to some place accessible by HP SIM or
access it directly if it is already accessible by HP SIM.
• Export the system certificate while browsing to the system. Select File→Properties from the browser
menu. Click Certificates. Click the Details tab, and then click Copy to File. Export the certificate as
a Base64-encoded X.509 file.
To obtain the CA certificate, contact your CA, or see the documentation provided with your certificate server
software. To import managed system certificates into the HP SIM Trusted System Certificates List:
1. Select Options→Security→Certificates→Trusted Certificates, and then click Import. The Import
Trusted System Certificate section appears.
2. Next to the Certificate Filename field, click Browse.
The Choose file dialog box appears.
3. Navigate to the location of the certificate to be imported, and then select the file name. Click Open.
The certificate is imported.
Note: If you are setting up a trusted certificate on a cluster, see “Cluster” for more information.
Suppressing browser warning messages
To suppress browser warnings regarding untrusted certificates when browsing to an HP SIM managed system
import the certificates into the browser.
1. Open Internet Explorer, and browse to the managed server at https://managed_server:2381 or HP
SIM at https://sim_server:50000.
2. On the Internet Explorer Security Alert, click View Certificate.
3. After reviewing the certificate, click Install Certificate.
4. Click Next.
5. Click Place all certificates in the following store.
6. Click Browse.
7. Select Trusted Root Certificate Authorities, and then click OK.
8. Click Next.
9. Click Finish.
10. Click OK.
Related procedures
• Creating a certificate signing request
• Submitting a certificate signing request
• Importing a CA-signed certificate
• Exporting a server certificate
• Setting up managed systems
Related topics
• Server certificates
• Trusted certificates
184 Networking and security